|
| |||||||
 |
 |
| | Thread Tools |
|
#1
3. juli 2009, 00:31
| |||
| |||
| Microsoft Pop Up Fortæl mig jeg har en virus Jeg havde Microsoft pop op fortæller mig at jeg havde en virus Ran malwarebyts ingenting. Ran super anti virus viste 16 problem. Derefter huskede at jeg havde Drweb scanner i computeren, og kørte det. Men jeg har bemærket, at de samme såkaldte trojanske dukker op. aolcinst.exe \ core.cab \ GTDOWNAO_106.ocx; C: \ Programmer \ Common Files \ aolback \ comps \ coach \ aolcinst.exe; Adware.Gdow n;; aolcinst.exe; C: \ Programmer \ Common Files \ aolback \ comps \ coach; Arkiv indeholder inficerede objekter flyttes.; TSSetup.exe \ data002; C: \ Programmer \ Common Files \ aolback \ comps \ tpspd \ TSSetup.exe; Formentlig DLOADER.Trojan;; TSSetup.exe; C: \ Programmer \ Common Files \ aolback \ comps \ tpspd; Arkiv indeholder inficerede objekter flyttes.; ppctl.dll; C: \ Programmer \ Common Files \ Scanner; Formentlig DLOADER.Trojan; Flyttet.; AIM.exe \ data090; C: \ AOL Instant Messenger \ AIM.exe; Adware.Aws;; AIM.exe; C: \ AOL Instant Messenger; Arkiv indeholder inficerede objekter flyttes.; setup.exe; C: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ sæbeskum \ CACHE \ 4381.3.4; Formentlig BACKDOOR.Trojan; Flyttet.; A0089111.ocx; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP212; Adware.Gdown; Flyttet.; A0089113.exe; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP212; Formentlig BACKDOOR.Trojan; Flyttet.; A0101519.exe \ data090; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP217 \ A0101519.exe; Adware.Aws;; A0101519.exe; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP217; Arkiv indeholder inficerede objekter flyttes.; A0122098.bat; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP257; Formentlig BATCH.Virus; Flyttet.; A0122542.bat; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP265; Formentlig BATCH.Virus; Flyttet.; A0122632.bat; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP265; Formentlig BATCH.Virus; Flyttet.; A0138379.exe \ core.cab \ GTDOWNAO_106.ocx; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP292 \ A0138379.exe; Adware.Gdown;; A0138379.exe; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP292; Arkiv indeholder inficerede objekter flyttes.; A0139338.exe \ data090; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP293 \ A0139338.exe; Adware.Aws;; A0139338.exe; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP293; Arkiv indeholder inficerede objekter flyttes.; A0139364.exe \ core.cab \ GTDOWNAO_106.ocx; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP293 \ A0139364.exe; Adware.Gdown;; A0139364.exe; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP293; Arkiv indeholder inficerede objekter flyttes.; A0139386.exe \ data002; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP293 \ A0139386.exe; Formentlig DLOADER.Trojan;; A0139386.exe; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP293; Arkiv indeholder inficerede objekter flyttes.; A0139531.DLL; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP296; Formentlig DLOADER.Trojan; Flyttet.; A0156077.exe \ data090; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP315 \ A0156077.exe; Adware.Aws;; A0156077.exe; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP315; Arkiv indeholder inficerede objekter flyttes.; A0156103.exe \ core.cab \ GTDOWNAO_106.ocx; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP315 \ A0156103.exe; Adware.Gdown;; A0156103.exe; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP315; Arkiv indeholder inficerede objekter flyttes.; A0156125.exe \ data002; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP315 \ A0156125.exe; Formentlig DLOADER.Trojan;; A0156125.exe; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP315; Arkiv indeholder inficerede objekter flyttes.; A0156545.DLL; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP317; Formentlig DLOADER.Trojan; Flyttet.; A0157937.exe \ core.cab \ GTDOWNAO_106.ocx; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP327 \ A0157937.exe; Adware.Gdown;; A0157937.exe; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP327; Arkiv indeholder inficerede objekter flyttes.; A0157938.exe \ data002; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP327 \ A0157938.exe; Formentlig DLOADER.Trojan;; A0157938.exe; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP327; Arkiv indeholder inficerede objekter flyttes.; A0157939.exe \ data090; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP327 \ A0157939.exe; Adware.Aws;; A0157939.exe; C: \ System Volume Information \ _restore (D9C30710-440A-4B3A-837F-765DA7B6372B) \ RP327; Arkiv indeholder inficerede objekter flyttes.; Og det vil ikke løse problemet bare flytter det. Hvad skal jeg bruge til at få det trojanske sluk computeren én gang for alle? Lige nu har jeg ingen anti virus kører derfor alle, jeg har tryed uanset om betalt for eller fri holder trække AOL. (My ISP) som en virus. |
|
#2
3. juli 2009, 10:09
| |||
| |||
| Microsoft Pop Up Fortæl mig jeg har en virus Update Malwarebytes og køre en fuld scanning derefter sende log venligst.
__________________  |
|
#3
3. juli 2009, 13:29
| |||
| |||
| Microsoft Pop Up Fortæl mig jeg har en virus opdateret malwarebytes Malwarebytes' Anti-Malware 1.38 Database version: 2297 Windows 5.1.2600 Service Pack 2 7/2/2009 3:06:04 PM mbam-log-2009-07-02 (15-06-04). txt Scan type: Full Scan (C: \ |) Objekter skannet: 168556 Tidsforbrug: 17 minut (ter), 16 sekund (s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registreringsdatabasenøgler Inficerede: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (Nr. ondsindede elementer opdaget) Memory Modules Infected: (Nr. ondsindede elementer opdaget) Registreringsdatabasenøgler Inficerede: (Nr. ondsindede elementer opdaget) Registry Values Infected: (Nr. ondsindede elementer opdaget) Registry Data Items Infected: (Nr. ondsindede elementer opdaget) Folders Infected: (Nr. ondsindede elementer opdaget) Files Infected: (Nr. ondsindede elementer opdaget) Men efter denne scanning var forbi et vindue poped op fortæller mig der var en fejl og vinduer er nødvendige for at lukke. |
|
#4
3. juli 2009, 14:52
| |||
| |||
| Microsoft Pop Up Fortæl mig jeg har en virus Download DDS fra | HER | eller | HER | eller | HER | og gemme den på dit skrivebord. Vista-brugere højreklikke på dds og vælge Kør som administrator (du vil modtage en UAC prompt, lad det) * XP-brugere Dobbeltklik på dds at køre den. * Hvis dit antivirus eller firewall forsøge at blokere DDS skal du lade den køre. * Når du er færdig DDS vil åbne to (2) logfiler. 1) DDS.txt 2) Attach.txt * Gem både logger på skrivebordet. * Du kopiere og indsætte hele indholdet i både logfilerne i dit næste svar. Bemærk: DDS vil instruere dig til at sende den Attach.txt log som en vedhæftet fil. Vær venlig at sende det som du ville enhver anden log ved at kopiere og indsætte det i svaret. ---------- Downloade Rooter.exe til skrivebordet * Dobbeltklik Rooter.exe for at starte værktøjet .* En DOS vindue vises og vise scanningen fremskridt. * Når udfylde en notepad fil, der indeholder rapporten vil åbne. * Kopier & indsæt resultaterne i dit næste svar. * Luk Notesblok og Rooter vil lukke. Et log vil også spare på % systemdrive% \ Rooter.txt (Hvor% systemdrive% er som regel C: eller det drev, du har Windows installeret).
__________________ |
|
#5
3. juli 2009, 17:13
| |||
| |||
| Microsoft Pop Up Fortæl mig jeg har en virus DDS (Ver_09-06-26.01) - FAT32x86 Drives af Windows-bruger på 19:43:32.90 på fredag 07/03/2009 Internet Explorer: 8.0.6001.18702 Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.1023.788 [GMT -4:00] ============== Kørende processer =============== C: \ WINDOWS \ system32 \ Svchost-k DcomLaunch Svchost.exe C: \ WINDOWS \ System32 \ Svchost.exe-k netsvcs Svchost.exe Svchost.exe C: \ WINDOWS \ system32 \ Spoolsv.exe Svchost.exe C: \ Programmer \ Fælles filer \ AOL \ ACS \ AOLAcsd.exe C: \ Programmer \ Java \ jre6 \ bin \ jqs.exe C: \ WINDOWS \ System32 \ snmp.exe C: \ WINDOWS \ system32 \ Svchost.exe-k imgsvc C: \ WINDOWS \ Explorer.EXE C: \ Programmer \ Lexmark 5200 serien \ lxbtbmgr.exe C: \ Programmer \ Java \ jre6 \ bin \ jusched.exe C: \ Programmer \ Lexmark 5200 serien \ lxbtbmon.exe C: \ Programmer \ Fælles filer \ AOL \ 1246084174 \ ee \ AOLSoftware.exe C: \ Programmer \ Fælles filer \ AOL \ ACS \ AOLDial.exe C: \ WINDOWS \ system32 \ Ctfmon.exe C: \ Programmer \ Jet Skærmaftryk \ jetScreenshot.exe C: \ WINDOWS \ system32 \ wuauclt.exe C: \ Programmer \ America Online 9.0 \ waol.exe C: \ Programmer \ America Online 9.0 \ shellmon.exe C: \ WINDOWS \ system32 \ rundll32.exe C: \ DOCUME ~ 1 \ WINDOW ~ 1 \ MYDOCU ~ 1 \ dds.scr ============== Pseudo HJT Rapport =============== uSearchMigratedDefaultURL = hxxp: / / www.google.com/search?q = (searchTerms) & sourceid = ie7 & RLS = com.micros OFT: da-DK & ie = utf8 & oe = utf8 uStart Page = hxxp: / / www.aol.com/ uWindow title = Internet Explorer leveret af epix ® mWindow title = Internet Explorer leveret af epix ® BHO: AskBar BHO: (201f27d4-3704-41d6-89c1-aa35e39143ed) - c: \ program files \ askbardis \ bar \ bin \ askBar.dll BHO: Java (tm) Plug-In 2 SSV Helper: (dbc80044-a445-435b-bc74-9c25c1c588a9) - c: \ Programmer \ Java \ jre6 \ bin \ jp2ssv.dll BHO: JQSIEStartDetectorImpl klasse: (e7e6f031-17ce-4c07-bc86-eabfe594f69c) - c: \ Programmer \ Java \ jre6 \ lib \ indsætte \ jqs \ dvs \ jqs_plugin.dll TB: AIM Søg: (40d41a8b-d79b-43d7-99a7-9ee0f344c385) -- TB: AOL Toolbar: (4982d40a-c53b-4615-b15b-b5b5e98d167c) - c: \ Programmer \ AOL Toolbar \ toolbar.dll TB: Ask Toolbar: (3041d03e-fd4b-44e0-b742-2d9b88305f98) - c: \ program files \ askbardis \ bar \ bin \ askBar.dll EB: Real.com: (fe54fa40-d68c-11d2-98fa-00c0f0318afe) - C: \ Windows \ system32 \ Shdocvw.dll uRun: [Ctfmon.exe] C: \ Windows \ system32 \ Ctfmon.exe uRun: [AOL Fast Start] "c: \ program files \ America Online 9.0 \ AOL.EXE"-b uRun: [Jet Skærmaftryk] "c: \ program files \ jet screenshot \ jetScreenshot.exe" mRun: [Lexmark 5200 serien] "c: \ Programmer \ Lexmark 5200 serien \ lxbtbmgr.exe" mRun: [LXBTCATS] rundll32 C: \ Windows \ system32 \ spool \ drivers \ w32x86 \ 3 \ LXBTtim e.dll, _RunDLLEntry @ 16 mRun: [SunJavaUpdateSched] "c: \ Programmer \ Java \ jre6 \ bin \ jusched.exe" mRun: [HostManager] c: \ Programmer \ Fælles filer \ AOL \ 1246084174 \ ee \ AOLSoftware.exe mRun: [AOLDialer] c: \ Programmer \ Fælles filer \ AOL \ acs \ AOLDial.exe mRun: [Pure Networks Port Magic] "c: \ progra ~ 1 \ purene ~ 1 \ portma ~ 1 \ PortAOL.exe"-Run mRun: [QuickTime Task] "c: \ Programmer \ QuickTime \ qttask.exe"-atboottime IE: & Add animation til IncrediMail Style Box - C: \ Programmer \ IncrediMail \ bin \ ressourcer \ WebMenuImg.htm IE: & AIM Søg IE: & AOL Toolbar søgning - c: \ Programmer \ AOL Toolbar \ toolbar.dll / SEARCH.HTML IE: (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ Network Diagnostic \ xpnetdiag.exe IE: (FB5F1910-F110-11D2-BB9E-00C04F795683) - c: \ Programmer \ Messenger \ msmsgs.exe IE: (4982D40A-C53B-4615-B15B-B5B5E98D167C) - (4982D40A-C53B-4615-B15B-B5B5E98D167C) - c: \ Programmer \ AOL Toolbar \ toolbar.dll IE: (CD67F990-D8E9-11d2-98FE-00C0F0318AFE) - (FE54FA40-D68C-11D2-98FA-00C0F0318AFE) - C: \ Windows \ system32 \ Shdocvw.dll LSP: FarLsp.dll Trusted Zone: 88sears.com \ www Trusted Zone: aol.com \ www Trusted Zone: comodo.com \ www Trusted Zone: computer-juice.com \ www Trusted Zone: giveawayoftheday.com \ www Trusted Zone: newegg.com \ www Trusted Zone: pchelpforum.com \ www Trusted Zone: searscard.com \ www Trusted Zone: statefarm.com \ www Trusted Zone: winpatrol.com \ www DPF: DirectAnimation Java Classes DPF: Internet Explorer Classes for Java DPF: Microsoft XML Parser for Java DPF: Win32 Classes DPF: (05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8) - hxxp: / / download.microsoft.com/download/e/7/3/e7345c16-80aa-4488-ae10-9ac6be844f99/OGAControl.cab DPF: (15589FA1-C456-11CE-BF01-00AA0055595A) - hxxp: / / w4s2.work4sure.com/c/ge/w4sgeen9.exe DPF: (5D86DDB5-BDF9-441B-9E9E-D4730F4EE499) - hxxp: / / download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) - hxxp: / / update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab? 1181748806125 DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) - hxxp: / / update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab? 1223016488385 DPF: (8AD9C840-044E-11D1-B3E9-00805F499D93) - hxxp: / / java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab DPF: (A90A5822-F108-45AD-8482-9BC8B12DD539) - hxxp: / / www.crucial.com / kontrol / cpcScanner.cab DPF: (B1E2B96C-12FE-45E2-BEF1-44A219113CDD) - hxxp: / / www.superadblocker.com / ActiveX / sabspx.cab DPF: (CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA) - hxxp: / / java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab DPF: (CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA) - hxxp: / / java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) - hxxp: / / download.macromedia.com / pub / Shockwave / førerhus / flash / swflash.cab DPF: (E8F628B5-259A-4734-97EE-BA914D7BE941) - hxxp: / / plugin.driveragent.com / filer / driveragent.cab AppInit_DLLs: C: \ Windows \ system32 \ cssdll32.dll LSA: Anmeldelse Packages = scecli ============= TJENESTER / drivers =============== R1 SASDIFSV; SASDIFSV c: \ program files \ superantispyware \ sasdifsv.sys [2006-10-10 5632] R1 SASKUTIL; SASKUTIL c: \ program files \ superantispyware \ SASKUTIL.SYS [2007-2-27 32256] R3 Winacusb; Winacusb; C: \ Windows \ system32 \ drivers \ wina cusb.sys [2008-3-25 902860] S2 ioloFileInfoList; iolo FileInfoList Service c: \ Programmer \ iolo \ Common \ lib \ ioloservicemanager.exe -> c: \ Programmer \ iolo \ Common \ lib \ ioloServiceManager.exe [?] S2 ioloSystemService; iolo System Service c: \ Programmer \ iolo \ Common \ lib \ ioloservicemanager.exe -> c: \ Programmer \ iolo \ Common \ lib \ ioloServiceManager.exe [?] S3 FarStoneFireWallDrive; FarStoneFireWallDrive c: \ win Dows \ system32 \ drivers \ FarDrive.sys [2003-4-2 140256] S3 ousb2hub; OrangeWare USB 2.0 Hub Support; C: \ Windows \ system32 \ drivers \ ousb2hub.sys [2008-2-27 53248] S3 PavSRK.sys; PavSRK.sys; \? \ C: \ Windows \ system32 \ pavs rk.sys -> C: \ Windows \ system32 \ PavSRK.sys [?] S3 PavTPK.sys; PavTPK.sys; \? \ C: \ Windows \ system32 \ pavt pk.sys -> C: \ Windows \ system32 \ PavTPK.sys [?] S3 SASENUM; SASENUM c: \ program files \ superantispyware \ SASENUM.SYS [2006-2-16 4096] S3 SIVDRIVER; SIV Kernel Driver c: \ Windows \ system32 \ drivers \ SIVX32.sys [2008-4-9 48480] ============== Filtilknytninger =============== JSEFile = Notepad.exe% 1 VBEFile = Notepad.exe% 1 VBSFile = Notepad.exe% 1 =============== Oprettet Seneste 30 ================ 2009-07-03 02:49 <DIR> - d ----- C: \ DOCUME ~ 1 \ vindue ~ 1 \ applic ~ 1 \ licenser 2009-07-03 02:49 <DIR> - d ----- C: \ DOCUME ~ 1 \ vindue ~ 1 \ applic ~ 1 \ PCMM2009 2009-07-03 02:48 <DIR> - d ----- c: \ Programmer \ PC MightyMax 2009 2009-07-01 09:43 <DIR> - d ----- C: \ DOCUME ~ 1 \ vindue ~ 1 \ applic ~ 1 \ ArcticLine 2009-07-01 09:43 <DIR> - d ----- c: \ program files \ Jet Skærmaftryk 2009-06-27 02:36 <DIR> - d ----- C: \ Windows \ system32 \ CatRoot_bak 2009-06-27 02:30 <DIR> - d ----- C: \ Installer iTunes 2009-06-27 02:30 <DIR> - d ----- C: \ Install ICQ 2009-06-27 02:30 <DIR> - d ----- C: \ AOL Instant Messenger 2009-06-27 02:30 <DIR> - d ----- C: \ MAV 2009-06-27 02:29 <DIR> - d ----- C: \ Programmer \ Fælles filer \ aolshare 2009-06-27 02:29 <DIR> - d ----- C: \ Program Files \ America Online 9.0 2009-06-24 22:33 221.184 en ------- C: \ Windows \ system32 \ wmpns.dll 2009-06-24 22:05 <DIR> - d ----- C: \ Windows \ system32 \ scripting 2009-06-24 22:05 <DIR> - d ----- C: \ Windows \ l2schemas 2009-06-24 22:05 <DIR> - d ----- C: \ Windows \ system32 \ da 2009-06-24 22:05 <DIR> - d ----- C: \ Windows \ system32 \ bits 2009-06-24 21:56 67.584 en ------- C: \ Windows \ system32 \ drivers \ sdbus.sys 2009-06-24 21:56 36.096 en ------- C: \ Windows \ system32 \ drivers \ intelppm.sys 2009-06-24 21:56 15.488 en ------- C: \ Windows \ system32 \ drivers \ mssmbios.sys 2009-06-24 21:56 12.416 en ------- C: \ Windows \ system32 \ drivers \ tunmp.sys 2009-06-24 21:56 11.136 en ------- C: \ Windows \ system32 \ drivers \ sffdisk.sys 2009-06-24 21:56 10.240 en ------- C: \ Windows \ system32 \ drivers \ sffp_sd.sys 2009-06-24 21:56 262.784 en ------- C: \ Windows \ system32 \ drivers \ HTTP.SYS 2009-06-24 21:54 2.012.670 en ------- C: \ Windows \ system32 \ dllcache \ nt5.cat 2009-06-24 21:53 114.688 en ------- C: \ Windows \ system32 \ dllcache \ wscript.exe 2009-06-24 21:50 <DIR> - d ----- C: \ Windows \ EHome 2009-06-24 02:10 <DIR> - d ----- c: \ program files \ SNSafe & Software 2009-06-24 02:10 <DIR> - d ----- C: \ DOCUME ~ 1 \ alluse ~ 1 \ applic ~ 1 \ SNSafe & Software 2009-06-20 20:46 246.272 -------- C: \ Windows \ system32 \ dllcache \ ieproxy.dll 2009-06-20 20:46 12.800 -------- C: \ Windows \ system32 \ dllcache \ xpshims.dll 2009-06-17 20:32 <DIR> - dsh --- C: \ FOUND.020 2009-06-17 10:03 <DIR> - dh --- C: \ Windows \ ie8 2009-06-16 19:54 <DIR> - d ----- C: \ DOCUME ~ 1 \ vindue ~ 1 \ applic ~ 1 \ AVS4YOU 2009-06-16 19:54 <DIR> - d ----- C: \ DOCUME ~ 1 \ alluse ~ 1 \ applic ~ 1 \ AVS4YOU 2009-06-16 19:53 <DIR> - d ----- C: \ Programmer \ Fælles filer \ AVSMedia 2009-06-16 19:53 1.700.352 en ------- C: \ Windows \ system32 \ Gdiplus.dll 2009-06-16 19:53 974.848 en ------- C: \ Windows \ system32 \ mfc70.dll 2009-06-16 19:53 487.424 en ------- C: \ Windows \ system32 \ msvcp70.dll 2009-06-16 19:53 344.064 en ------- C: \ Windows \ system32 \ msvcr70.dll 2009-06-16 19:53 <DIR> - d ----- c: \ program files \ AVS4YOU 2009-06-12 21:45 3.120 en ------- C: \ Windows \ MF_C426.lfa 2009-06-11 16:27 <DIR> - d ----- c: \ program files \ Friske RAM 2009-06-11 16:21 <DIR> - dsh --- C: \ FOUND.019 2009-06-11 11:55 5.465.088 en ------- C: \ Friske RAM.msi 2009-06-09 02:29 <DIR> - d ----- C: \ DOCUME ~ 1 \ vindue ~ 1 \ applic ~ 1 \ Blitware 2009-06-09 02:29 <DIR> - d ----- c: \ program files \ Driver Robot 2009-06-08 22:24 <DIR> - d ----- C: \ DOCUME ~ 1 \ alluse ~ 1 \ applic ~ 1 \ PC Drivers Headquarters 2009-06-07 23:00 <DIR> - d ----- C: \ DOCUME ~ 1 \ vindue ~ 1 \ applic ~ 1 \ GetRightToGo 2009-06-07 19:38 7.680 en ------- C: \ Windows \ system32 \ spdwnwxp.exe 2009-06-07 19:38 19.569 en ------- C: \ Windows \ 002865_.tmp 2009-06-06 23:57 <DIR> - dsh --- C: \ Genbrugsprodukter 2009-06-06 10:46 <DIR> - d ----- c: \ program files \ filehippo.com 2009-06-04 23:59 <DIR> - d ----- c: \ program files \ DrWeb 2009-06-03 23:57 <DIR> a-dshr - C: \ cmdcons 2009-06-03 23:28 161.792 en ------- C: \ Windows \ SWREG.exe 2009-06-03 23:28 98.816 en ------- C: \ Windows \ sed.exe ==================== Find3M ==================== 2009-06-27 02:16 76.487 en ------- C: \ Windows \ PCHealth \ helpctr \ offlinecache \ index.dat 2009-06-17 11:27 38.160 en ------- C: \ Windows \ system32 \ drivers \ mbamswissarmy.sys 2009-06-17 11:27 19.096 en ------- C: \ Windows \ system32 \ drivers \ mbam.sys 2009-06-11 18:43 1.744 en ------- C: \ Windows \ system32 \ d3d9caps.dat 2009-05-27 11:21 372 en ------- c: \ program files \ ujhonz.txt 2009-05-21 11:33 410.984 en ------- C: \ Windows \ system32 \ deploytk.dll 2009-05-13 01:15 5.936.128 en ------- C: \ Windows \ system32 \ dllcache \ mshtml.dll 2009-05-13 01:15 915.456 en ------- C: \ Windows \ system32 \ Wininet.dll 2009-05-13 01:15 915.456 en ------- C: \ Windows \ system32 \ dllcache \ Wininet.dll 2009-05-12 01:11 102.912 -------- C: \ Windows \ system32 \ dllcache \ iecompat.dll 2009-05-07 11:44 344.064 en ------- C: \ Windows \ system32 \ Localspl.dll 2009-05-07 11:44 344.064 en ------- C: \ Windows \ system32 \ dllcache \ Localspl.dll 2009-04-30 17:22 1.985.024 en ------- C: \ Windows \ system32 \ dllcache \ iertutil.dll 2009-04-30 17:22 11.064.832 en ------- C: \ Windows \ system32 \ dllcache \ ieframe.dll 2009-04-30 17:22 1.207.808 en ------- C: \ Windows \ system32 \ dllcache \ urlmon.dll 2009-04-30 17:22 385.536 en ------- C: \ Windows \ system32 \ dllcache \ iedkcs32.dll 2009-04-30 17:22 25.600 en ------- C: \ Windows \ system32 \ dllcache \ jsproxy.dll 2009-04-30 07:21 173.056 en ------- C: \ Windows \ system32 \ dllcache \ ie4uinit.exe 2009-04-22 00:07 253.688 en ------- C: \ Windows \ system32 \ cssdll32.dll 2009-04-17 05:58 1.846.656 en ------- C: \ Windows \ system32 \ Win32k.sys 2009-04-17 05:58 1.846.656 en ------- C: \ Windows \ system32 \ dllcache \ Win32k.sys 2009-04-15 11:26 583.168 en ------- C: \ Windows \ system32 \ Rpcrt4.dll 2009-04-15 11:26 583.168 en ------- C: \ Windows \ system32 \ dllcache \ Rpcrt4.dll 2008-03-18 03:11 332 en ------- C: \ DOCUME ~ 1 \ vindue ~ 1 \ applic ~ 1 \ wklnhst.dat 2007-06-10 23:19 11.079 en ------- c: \ program files \ Folder.htt 2007-06-10 23:19 266 --- sh --- c: \ program files \ Desktop.ini ============= FINISH: 19:43:58.97 =============== Medmindre dette specifikt er instrueret, DON'T POST Denne logfil. Hvis der anmodes om, ZIP IT UP & VEDLÆG IT DDS (Ver_09-06-26.01) Microsoft Windows XP Home Edition Opstartsenhed: \ Device \ HarddiskVolume1 Installer Dato: 6/13/2007 12:27:51 AM System Uptime: 7/3/2009 6:50:56 PM (1 time siden) Bundkort: ECS | | K7S5A Processor: AMD Athlon (tm) XP 1900 + | Socket-A | 1593/66mhz ==== Diskpartitioner ========================= A: er Removable C: er fast (FAT32) - 112 GIB alt 90.479 GIB gratis. D: er CDROM () ==== Deaktiveret Enhedshåndtering Vareposter ============= ==== System gendannelsespunkter =================== RP205: 3/27/2009 3:00:16 AM - Software Distribution Service 3.0 RP206: 3/27/2009 3:38:07 AM - Software Distribution Service 3.0 RP207: 3/28/2009 3:52:35 AM - System Checkpoint RP208: 3/29/2009 10:01:09 PM - Software Distribution Service 3.0 RP209: 6/6/2009 10:52:13 PM - Installeret Mavis Beacon Underviser Typing 15 RP210: 6/6/2009 10:52:30 PM - Fjernet Mavis Beacon Underviser Typing 15 RP211: 6/6/2009 10:52:49 PM - Installeret Panda Internet Security 2007 RP212: 6/6/2009 10:53:06 PM - Fjernet Panda Internet Security 2007 RP213: 5/16/2009 12:48:17 PM - Software Distribution Service 3.0 RP214: 5/17/2009 4:49:29 PM - Software Distribution Service 3.0 RP215: 5/17/2009 5:35:08 PM - Software Distribution Service 3.0 RP216: 5/18/2009 8:44:14 AM - Software Distribution Service 3.0 RP217: 5/18/2009 8:51:46 AM - Software Distribution Service 3.0 RP218: 5/19/2009 12:10:32 PM - Software Distribution Service 3.0 RP219: 5/19/2009 1:35:25 PM - Software Distribution Service 3.0 RP220: 5/20/2009 8:09:36 AM - Software Distribution Service 3.0 RP221: 5/20/2009 9:17:11 AM - Software Distribution Service 3.0 RP222: 5/21/2009 8:36:45 AM - Software Distribution Service 3.0 RP223: 5/21/2009 9:24:15 AM - Software Distribution Service 3.0 RP224: 5/21/2009 3:40:47 PM - Software Distribution Service 3.0 RP225: 5/21/2009 11:38:45 PM - Software Distribution Service 3.0 RP226: 5/22/2009 7:54:23 PM - Software Distribution Service 3.0 RP227: 5/22/2009 10:48:21 PM - Software Distribution Service 3.0 RP228: 5/23/2009 7:15:10 PM - Software Distribution Service 3.0 RP229: 5/24/2009 4:32:34 PM - Software Distribution Service 3.0 RP230: 5/24/2009 6:46:46 PM - Software Distribution Service 3.0 RP231: 5/24/2009 8:21:48 PM - Software Distribution Service 3.0 RP232: 5/24/2009 11:47:56 PM - Software Distribution Service 3.0 RP233: 5/25/2009 8:18:22 AM - Software Distribution Service 3.0 RP234: 5/25/2009 8:39:45 AM - Software Distribution Service 3.0 RP235: 5/25/2009 11:41:13 PM - Software Distribution Service 3.0 RP236: 5/26/2009 10:33:23 AM - Software Distribution Service 3.0 RP237: 5/27/2009 8:13:50 AM - Software Distribution Service 3.0 RP238: 5/27/2009 8:45:24 AM - Software Distribution Service 3.0 RP239: 5/27/2009 7:16:04 PM - Software Distribution Service 3.0 RP240: 5/28/2009 4:52:25 PM - Software Distribution Service 3.0 RP241: 5/28/2009 4:58:56 PM - Software Distribution Service 3.0 RP242: 5/28/2009 5:05:35 PM - installeret Windows Internet Explorer 8. RP243: 5/28/2009 5:06:37 PM - Software Distribution Service 3.0 RP244: 5/29/2009 8:39:44 AM - Software Distribution Service 3.0 RP245: 5/29/2009 8:52:41 AM - Software Distribution Service 3.0 RP246: 5/30/2009 5:01:53 AM - Software Distribution Service 3.0 RP247: 5/31/2009 9:08:55 PM - Software Distribution Service 3.0 RP248: 6/1/2009 12:30:50 AM - installeret Windows Internet Explorer 8. RP249: 6/1/2009 12:31:29 AM - Software Distribution Service 3.0 RP250: 6/1/2009 1:01:01 AM - Software Distribution Service 3.0 RP251: 6/1/2009 9:59:00 AM - Software Distribution Service 3.0 RP252: 6/2/2009 1:25:10 AM - Software Distribution Service 3.0 RP253: 6/2/2009 1:44:44 PM - Software Distribution Service 3.0 RP254: 6/2/2009 9:42:45 PM - Software Distribution Service 3.0 RP255: 6/3/2009 2:52:20 AM - Software Distribution Service 3.0 RP256: 6/3/2009 10:07:30 AM - Software Distribution Service 3.0 RP257: 6/3/2009 9:03:54 PM - Software Distribution Service 3.0 RP258: 6/4/2009 1:16:16 AM - Installeret MSXML 4.0 SP2 (KB925672) RP259: 6/4/2009 3:00:13 AM - Software Distribution Service 3.0 RP260: 6/4/2009 3:13:34 AM - Software Distribution Service 3.0 RP261: 6/4/2009 11:59:13 PM - Installeret Dr.Web anti-virus til Windows 5.0. RP262: 6/5/2009 12:36:30 AM - Fjernet Dr.Web anti-virus til Windows 5.0. RP263: 6/5/2009 12:38:54 AM - Fjernet Dr.Web anti-virus til Windows 5.0. RP264: 6/5/2009 2:22:38 AM - Software Distribution Service 3.0 RP265: 6/6/2009 3:00:14 AM - Software Distribution Service 3.0 RP266: 6/6/2009 10:51:09 AM - Software Distribution Service 3.0 RP267: 6/7/2009 12:10:12 AM - Software Distribution Service 3.0 RP268: 6/8/2009 12:20:37 AM - Software Distribution Service 3.0 RP269: 6/8/2009 10:03:39 AM - Software Distribution Service 3.0 RP270: 6/8/2009 10:23:28 PM - Installed Driver Opdager RP271: 6/8/2009 10:41:57 PM - Software Distribution Service 3.0 RP272: 6/9/2009 2:32:24 AM - Software Distribution Service 3.0 RP273: 6/9/2009 8:29:05 AM - Software Distribution Service 3.0 RP274: 6/9/2009 1:25:29 PM - Software Distribution Service 3.0 RP275: 6/9/2009 11:06:13 PM - Software Distribution Service 3.0 RP276: 6/10/2009 8:56:06 AM - Software Distribution Service 3.0 RP277: 6/10/2009 9:40:44 AM - Software Distribution Service 3.0 RP278: 6/11/2009 1:45:31 AM - Software Distribution Service 3.0 RP279: 6/11/2009 4:27:14 PM - Installeret Friske RAM RP280: 6/11/2009 6:45:39 PM - konfigureret Driver Opdager RP281: 6/12/2009 1:51:36 AM - Software Distribution Service 3.0 RP282: 6/12/2009 8:55:19 AM - Software Distribution Service 3.0 RP283: 6/13/2009 11:02:27 AM - Software Distribution Service 3.0 RP284: 6/13/2009 11:13:50 AM - Software Distribution Service 3.0 RP285: 6/14/2009 10:49:45 PM - Software Distribution Service 3.0 RP286: 6/15/2009 9:16:53 AM - Software Distribution Service 3.0 RP287: 6/15/2009 11:09:18 PM - Software Distribution Service 3.0 RP288: 6/16/2009 10:07:34 AM - Software Distribution Service 3.0 RP289: 6/17/2009 9:01:20 AM - Software Distribution Service 3.0 RP290: 6/17/2009 10:05:33 AM - installeret Windows Internet Explorer 8. RP291: 6/18/2009 10:16:10 AM - Software Distribution Service 3.0 RP292: 6/18/2009 10:41:06 AM - installeret Windows Media Format 9 Series Runtime Setup RP293: 6/18/2009 1:11:48 PM - installeret Windows Media Format 9 Series Runtime Setup RP294: 6/18/2009 1:29:13 PM - Software Distribution Service 3.0 RP295: 6/19/2009 3:01:54 AM - Software Distribution Service 3.0 RP296: 6/19/2009 9:29:35 AM - Software Distribution Service 3.0 RP297: 6/19/2009 5:47:01 PM - Software Distribution Service 3.0 RP298: 6/20/2009 6:59:50 PM - Software Distribution Service 3.0 RP299: 6/20/2009 7:05:46 PM - Java (TM) 6 Update 14 RP300: 6/21/2009 4:07:26 PM - Software Distribution Service 3.0 RP301: 6/21/2009 4:14:22 PM - Software Distribution Service 3.0 RP302: 6/22/2009 9:44:00 AM - Software Distribution Service 3.0 RP303: 6/22/2009 11:31:38 AM - Software Distribution Service 3.0 RP304: 6/23/2009 3:00:23 AM - Software Distribution Service 3.0 RP305: 6/24/2009 9:44:31 AM - Software Distribution Service 3.0 RP306: 6/24/2009 9:55:45 AM - Software Distribution Service 3.0 RP307: 6/24/2009 10:14:50 AM - Software Distribution Service 3.0 RP308: 6/24/2009 9:41:13 PM - Software Distribution Service 3.0 RP309: 6/25/2009 2:52:04 AM - Software Distribution Service 3.0 RP310: 6/25/2009 12:17:49 PM - Software Distribution Service 3.0 RP311: 6/26/2009 9:27:47 PM - Software Distribution Service 3.0 RP312: 6/27/2009 12:41:14 AM - Gendan Operation RP313: 6/27/2009 1:35:40 AM - Gendan Operation RP314: 6/27/2009 2:25:58 AM - Software Distribution Service 3.0 RP315: 6/27/2009 2:30:41 AM - installeret Windows Media Format 9 Series Runtime Setup RP316: 6/28/2009 8:31:27 AM - Software Distribution Service 3.0 RP317: 6/29/2009 10:03:24 AM - Software Distribution Service 3.0 RP318: 6/29/2009 6:35:12 PM - Software Distribution Service 3.0 RP319: 6/29/2009 9:00:14 PM - Software Distribution Service 3.0 RP320: 6/30/2009 3:32:09 AM - Software Distribution Service 3.0 RP321: 6/30/2009 11:45:20 AM - Software Distribution Service 3.0 RP322: 7/1/2009 9:15:52 AM - Software Distribution Service 3.0 RP323: 7/1/2009 11:21:44 AM - Software Distribution Service 3.0 RP324: 7/1/2009 10:38:39 PM - Software Distribution Service 3.0 RP325: 7/2/2009 3:16:53 AM - Software Distribution Service 3.0 RP326: 7/2/2009 12:22:35 PM - Software Distribution Service 3.0 RP327: 7/2/2009 7:09:25 PM - Software Distribution Service 3.0 RP328: 7/3/2009 4:04:54 AM - Software Distribution Service 3.0 ==== Installerede programmer ====================== ABBYY FineReader 5.0 Sprint Plus Adobe Flash Player 10 ActiveX AOL Coach Version 2.0 (Build: 20.041.026,5 da) AOL Connectivity Services AOL Deskbar AOL Toolbar AOL Uninstaller (Vælg, hvilke produkter til fjern) AOL You've Got Pictures Screensaver C-Media Audio C-Media WDM Audio Driver Comodo SafeSurf Compatibility Pack til Office 2007-systemet Cool PDF Reader 1.0 Driver Robot 1.0.6.0 filehippo.com Update Checker Friske RAM HackerSmacker HijackThis 2.0.2 Hotfix til Windows XP (KB896344) Hotfix til Windows XP (KB914440) Hotfix til Windows XP (KB915865) Hotfix til Windows XP (KB952287) IncrediMail Xe Java (TM) 6 Update 14 Jet Skærmaftryk v 2.0 Lexmark 5200 Series Macromedia Shockwave Player Magentic Malwarebytes' Anti-Malware Microsoft. NET Framework 1.1 Microsoft. NET Framework 2.0 Microsoft internationaliseret Domain Names Skadebegrænsnings API'er Microsoft National Language Support Downlevel API'er Microsoft Office PowerPoint Viewer 2007 (engelsk) Microsoft Visual C + + 2005 Redistributable Microsoft Web Publishing Wizard 1.52 Microsoft Works MSXML 4.0 SP2 (KB925672) MSXML 4.0 SP2 (KB927978) MSXML 4.0 SP2 (KB936181) MSXML 4.0 SP2 (KB954430) MSXML 6 Service Pack 2 (KB954459) Pure Networks Port Magic QuickTime RealPlayer Basic Sikkerhedsopdatering til Windows Internet Explorer 7 (KB933566) Sikkerhedsopdatering til Windows Internet Explorer 7 (KB937143) Sikkerhedsopdatering til Windows Internet Explorer 7 (KB938127) Sikkerhedsopdatering til Windows Internet Explorer 7 (KB939653) Sikkerhedsopdatering til Windows Internet Explorer 7 (KB942615) Sikkerhedsopdatering til Windows Internet Explorer 7 (KB944533) Sikkerhedsopdatering til Windows Internet Explorer 7 (KB963027) Sikkerhedsopdatering til Windows Internet Explorer 8 (KB969897) Sikkerhedsopdatering til Windows Media Player (KB911564) Sikkerhedsopdatering til Windows Media Player (KB952069) Sikkerhedsopdatering til Windows Media Player 6.4 (KB925398) Sikkerhedsopdatering til Windows Media Player 9 (KB917734) Sikkerhedsopdatering til Windows Media Player 9 (KB936782) Sikkerhedsopdatering til Windows XP (KB893756) Sikkerhedsopdatering til Windows XP (KB896358) Sikkerhedsopdatering til Windows XP (KB896423) Sikkerhedsopdatering til Windows XP (KB896428) Sikkerhedsopdatering til Windows XP (KB899587) Sikkerhedsopdatering til Windows XP (KB899591) Sikkerhedsopdatering til Windows XP (KB900725) Sikkerhedsopdatering til Windows XP (KB901017) Sikkerhedsopdatering til Windows XP (KB901214) Sikkerhedsopdatering til Windows XP (KB902400) Sikkerhedsopdatering til Windows XP (KB904706) Sikkerhedsopdatering til Windows XP (KB905414) Sikkerhedsopdatering til Windows XP (KB905749) Sikkerhedsopdatering til Windows XP (KB908519) Sikkerhedsopdatering til Windows XP (KB911562) Sikkerhedsopdatering til Windows XP (KB911927) Sikkerhedsopdatering til Windows XP (KB913580) Sikkerhedsopdatering til Windows XP (KB914388) Sikkerhedsopdatering til Windows XP (KB914389) Sikkerhedsopdatering til Windows XP (KB917344) Sikkerhedsopdatering til Windows XP (KB917953) Sikkerhedsopdatering til Windows XP (KB918118) Sikkerhedsopdatering til Windows XP (KB918439) Sikkerhedsopdatering til Windows XP (KB919007) Sikkerhedsopdatering til Windows XP (KB920213) Sikkerhedsopdatering til Windows XP (KB920670) Sikkerhedsopdatering til Windows XP (KB920683) Sikkerhedsopdatering til Windows XP (KB920685) Sikkerhedsopdatering til Windows XP (KB921503) Sikkerhedsopdatering til Windows XP (KB922819) Sikkerhedsopdatering til Windows XP (KB923191) Sikkerhedsopdatering til Windows XP (KB923414) Sikkerhedsopdatering til Windows XP (KB923561) Sikkerhedsopdatering til Windows XP (KB923689) Sikkerhedsopdatering til Windows XP (KB923980) Sikkerhedsopdatering til Windows XP (KB924191) Sikkerhedsopdatering til Windows XP (KB924270) Sikkerhedsopdatering til Windows XP (KB924496) Sikkerhedsopdatering til Windows XP (KB924667) Sikkerhedsopdatering til Windows XP (KB925902) Sikkerhedsopdatering til Windows XP (KB926247) Sikkerhedsopdatering til Windows XP (KB926255) Sikkerhedsopdatering til Windows XP (KB926436) Sikkerhedsopdatering til Windows XP (KB927779) Sikkerhedsopdatering til Windows XP (KB927802) Sikkerhedsopdatering til Windows XP (KB928255) Sikkerhedsopdatering til Windows XP (KB928843) Sikkerhedsopdatering til Windows XP (KB929123) Sikkerhedsopdatering til Windows XP (KB930178) Sikkerhedsopdatering til Windows XP (KB931261) Sikkerhedsopdatering til Windows XP (KB931784) Sikkerhedsopdatering til Windows XP (KB932168) Sikkerhedsopdatering til Windows XP (KB933566) Sikkerhedsopdatering til Windows XP (KB933729) Sikkerhedsopdatering til Windows XP (KB935839) Sikkerhedsopdatering til Windows XP (KB935840) Sikkerhedsopdatering til Windows XP (KB936021) Sikkerhedsopdatering til Windows XP (KB938464) Sikkerhedsopdatering til Windows XP (KB938829) Sikkerhedsopdatering til Windows XP (KB941202) Sikkerhedsopdatering til Windows XP (KB941568) Sikkerhedsopdatering til Windows XP (KB941569) Sikkerhedsopdatering til Windows XP (KB941644) Sikkerhedsopdatering til Windows XP (KB941693) Sikkerhedsopdatering til Windows XP (KB943055) Sikkerhedsopdatering til Windows XP (KB943460) Sikkerhedsopdatering til Windows XP (KB943485) Sikkerhedsopdatering til Windows XP (KB944653) Sikkerhedsopdatering til Windows XP (KB945553) Sikkerhedsopdatering til Windows XP (KB946026) Sikkerhedsopdatering til Windows XP (KB946648) Sikkerhedsopdatering til Windows XP (KB948590) Sikkerhedsopdatering til Windows XP (KB948881) Sikkerhedsopdatering til Windows XP (KB950749) Sikkerhedsopdatering til Windows XP (KB950760) Sikkerhedsopdatering til Windows XP (KB950762) Sikkerhedsopdatering til Windows XP (KB950974) Sikkerhedsopdatering til Windows XP (KB951066) Sikkerhedsopdatering til Windows XP (KB951376-v2) Sikkerhedsopdatering til Windows XP (KB951376) Sikkerhedsopdatering til Windows XP (KB951698) Sikkerhedsopdatering til Windows XP (KB951748) Sikkerhedsopdatering til Windows XP (KB952004) Sikkerhedsopdatering til Windows XP (KB952954) Sikkerhedsopdatering til Windows XP (KB953839) Sikkerhedsopdatering til Windows XP (KB954211) Sikkerhedsopdatering til Windows XP (KB954600) Sikkerhedsopdatering til Windows XP (KB955069) Sikkerhedsopdatering til Windows XP (KB956391) Sikkerhedsopdatering til Windows XP (KB956572) Sikkerhedsopdatering til Windows XP (KB956802) Sikkerhedsopdatering til Windows XP (KB956803) Sikkerhedsopdatering til Windows XP (KB956841) Sikkerhedsopdatering til Windows XP (KB957095) Sikkerhedsopdatering til Windows XP (KB957097) Sikkerhedsopdatering til Windows XP (KB958644) Sikkerhedsopdatering til Windows XP (KB958687) Sikkerhedsopdatering til Windows XP (KB958690) Sikkerhedsopdatering til Windows XP (KB959426) Sikkerhedsopdatering til Windows XP (KB960225) Sikkerhedsopdatering til Windows XP (KB960715) Sikkerhedsopdatering til Windows XP (KB960803) Sikkerhedsopdatering til Windows XP (KB961373) Sikkerhedsopdatering til Windows XP (KB961501) Sikkerhedsopdatering til Windows XP (KB968537) Sikkerhedsopdatering til Windows XP (KB969898) Sikkerhedsopdatering til Windows XP (KB970238) SiS 900 PCI Fast Ethernet Adapter Driver SIW version 2008-04-02 SUPERAntiSpyware Free Edition Udskriv Shop 21 US Robotics 56K Faxmodem USB Opdatering til Windows XP (KB894391) Opdatering til Windows XP (KB898461) Opdatering til Windows XP (KB900485) Opdatering til Windows XP (KB904942) Opdatering til Windows XP (KB908531) Opdatering til Windows XP (KB910437) Opdatering til Windows XP (KB911280) Opdatering til Windows XP (KB916595) Opdatering til Windows XP (KB920342) Opdatering til Windows XP (KB920872) Opdatering til Windows XP (KB922582) Opdatering til Windows XP (KB927891) Opdatering til Windows XP (KB930916) Opdatering til Windows XP (KB931836) Opdatering til Windows XP (KB932823-v3) Opdatering til Windows XP (KB933360) Opdatering til Windows XP (KB938828) Opdatering til Windows XP (KB942763) Opdatering til Windows XP (KB955839) Opdatering til Windows XP (KB967715) Synspunkt Media Player WebFldrs XP Windows Genuine Advantage Validation Tool (KB892130) Windows Installer 3.1 (KB893803) Windows Internet Explorer 8 Windows XP Hotfix - KB873339 Windows XP Hotfix - KB885836 Windows XP Hotfix - KB886185 Windows XP Hotfix - KB887472 Windows XP Hotfix - KB888302 Windows XP Hotfix - KB890859 Windows XP Hotfix - KB891781 Windows XP Uninstall WinPatrol 2009 Zoom V.92 PCI Voice Faxmodem Zoom V92 PC Card Voice Faxmodem ==== Logbog beskeder fra Past Week ======== 7/3/2009 4:23:49 PM, error: System Fejl [1003] - Fejlkode 00000077, parameter1 c000000e, parameter2 c000000e, parameter3 00000000, parameter4 01.422.000. 7/3/2009 2:33:40 PM, error: System Fejl [1003] - Fejlkode 000000f4, parameter1 00000003, parameter2 86cdb430, parameter3 86cdb5a4, parameter4 805fa1f0. 7/1/2009 10:39:09 PM, fejl: Service Control Manager [7034] - AOL TopSpeed Monitor tjeneste afsluttes uventet. Det har den gjort 6 gang (e). 6/30/2009 5:05:18 PM, fejl: Print [6161] - Dokumentet Syslog - Notesblok ejes af Windows User undladt at udskrive på printer Lexmark 5200 Series. Data type: LEMF. Størrelsen af spool fil i bytes: 1.208.022. Antal bytes trykt: 1.208.022. Samlede antal sider i dokumentet: 3. Antal sider trykt: 0. Kundeanmeldelser maskine: \ \ SUNPORCH. Win32 fejlkode returneres af print processor: 126 (0x7e). 6/29/2009 11:36:01 PM, fejl: Service Control Manager [7000] - Den SASDIFSV tjeneste ikke starte pga. følgende fejl: Kan ikke oprette en fil, når filen eksisterer allerede. 6/27/2009 2:24:45 AM, fejl: Service Control Manager [7000] - Den Upload Manager tjeneste ikke starte pga. følgende fejl: Den konto, der angives for denne service er forskellig fra den konto, der anvises til andre tjenester, som kører i den samme proces. 6/27/2009 2:24:37 AM, fejl: BITS [16391] - bittene job Listen er ikke i en anerkendt format. Det kan være blevet skabt af en anden version af BITS. Jobbet listen er blevet ryddet. 6/27/2009 2:08:32 AM, fejl: SnsCore [20] -- 6/27/2009 2:08:24 AM, fejl: Service Control Manager [7000] - Den iolo FileInfoList Service service ikke starte pga. følgende fejl: Systemet kan ikke finde den angivne fil. 6/27/2009 1:41:24 AM, fejl: Service Control Manager [7023] - Den HID Input Service service afsluttet med følgende fejl: Systemet kan ikke finde den angivne fil. 6/27/2009 1:41:24 AM, fejl: Service Control Manager [7000] - Den iolo System Service tjeneste ikke starte pga. følgende fejl: Systemet kan ikke finde den angivne fil. 6/27/2009 1:36:19 AM, fejl: Service Control Manager [7034] - AOL TopSpeed Monitor tjeneste afsluttes uventet. Det har den gjort 5 tid (s). 6/27/2009 1:36:09 AM, fejl: Service Control Manager [7031] - AOL TopSpeed Monitor tjeneste afsluttes uventet. Det har den gjort 4 tid (s). Følgende korrigerende foranstaltninger vil blive truffet i 1000 millisekunder: Genstart tjenesten. 6/27/2009 1:36:01 AM, fejl: Service Control Manager [7031] - AOL TopSpeed Monitor tjeneste afsluttes uventet. Det har gjort det 3 gang (e). Følgende korrigerende foranstaltninger vil blive truffet i 1000 millisekunder: Genstart tjenesten. 6/27/2009 1:35:53 AM, fejl: Service Control Manager [7031] - AOL TopSpeed Monitor tjeneste afsluttes uventet. Det har den gjort 2 gang (e). Følgende korrigerende foranstaltninger vil blive truffet i 1000 millisekunder: Genstart tjenesten. 6/27/2009 1:35:35 AM, fejl: Service Control Manager [7031] - AOL TopSpeed Monitor tjeneste afsluttes uventet. Det har den gjort 1 gang (e). Følgende korrigerende foranstaltninger vil blive truffet i 1000 millisekunder: Genstart tjenesten. 6/27/2009 1:32:44 AM, fejl: DCOM [10005] - DCOM fik fejlen "% 1084" forsøger at starte tjenesten EventSystem med argumenterne "" for at køre serveren: (1BE1F766-5536-11D1 - B726-00C04FB926AF) 6/27/2009 1:30:38 AM, fejl: Service Control Manager [7026] - Følgende boot-start-eller system-start-driver (s) kunne ikke indlæses: AFD AmdK7 FIPS IPSec MrxSmb NetBIOS NetBT RasAcd Rdbss SASDIFSV SASKUTIL SnsCore Tcpip WS2IFSL 6/27/2009 1:30:38 AM, fejl: Service Control Manager [7001] - TCP / IP NetBIOS Helper tjeneste afhænger af AFD tjeneste, der har undladt at starte på grund af følgende fejl: En enhed er knyttet til systemet er ikke fungerer. 6/27/2009 1:30:38 AM, fejl: Service Control Manager [7001] - Den IPSEC Services tjeneste afhænger af IPSEC driver service der har undladt at starte på grund af følgende fejl: En enhed er knyttet til systemet ikke fungerer . 6/27/2009 1:30:38 AM, fejl: Service Control Manager [7001] - DNS kundeservicerepræsentant afhænger af TCP / IP protokol Driver tjeneste der har undladt at starte på grund af følgende fejl: En enhed er knyttet til systemet ikke fungerer. 6/27/2009 1:30:38 AM, fejl: Service Control Manager [7001] - tjenesten DHCP Client afhænger af NetBIOS over Tcpip tjeneste, der har undladt at starte på grund af følgende fejl: En enhed er knyttet til systemet er ikke funktion. 6/27/2009 1:29:52 AM, fejl: DCOM [10005] - DCOM fik fejlen "% 1084" forsøger at starte tjenesten netman med argumenterne "" for at køre serveren: (BA126AE5-2166-11D1 - B1D0-00805FC1270E) 6/27/2009 1:19:01 AM, fejl: Service Control Manager [7009] - Timeout (30000 millisekunder) venter på IMAPI CD-Burning COM Service-tjenesten til at oprette forbindelse. 6/27/2009 1:19:01 AM, fejl: Service Control Manager [7000] - IMAPI CD-Burning COM Service service ikke starte pga. følgende fejl: Tjenesten svarede ikke til starten eller kontrol anmodning rettidigt. 6/27/2009 1:16:56 AM, fejl: Service Control Manager [7023] - Terminal Services service blev afsluttet med følgende fejl: Ugyldigt adgang til hukommelsesplacering. 6/27/2009 1:16:56 AM, fejl: Service Control Manager [7023] - tjenesten Automatiske opdateringer afsluttet med følgende fejl:%% 3228369023 6/27/2009 1:16:56 AM, fejl: Service Control Manager [7001] - Den Hurtigt brugerskift Forenelighed service afhænger af Terminal Services, som har undladt at starte på grund af følgende fejl: Ugyldigt adgang til hukommelsesplacering. 6/27/2009 1:05:23 AM, fejl: DCOM [10005] - DCOM fik fejlen "% 1084" forsøger at starte tjenesten wuauserv med argumenterne "" for at køre serveren: (E60687F7-01A1-40AA - 86AC-DB1CBF673334) 6/26/2009 9:29:28 PM, fejl: Windows Update Agent [20] - Installation Manglende: Windows undladt at installere følgende opdatering med fejl 0x80070643: Microsoft. NET Framework 1.1 Service Pack 1. ==== Slutningen af filen =========================== Rooter.exe (v1.0.2) ved Eric_71 . SeDebugPrivilege indrømmet held ... . Windows XP Home Edition (5.1.2600) Service Pack 2 [32_bits] - x86 Family 6 Model 6 Stepping 2, AuthenticAMD . [wscsvc] (Security Center) kører (state: 4) [SharedAccess] rindende (tilstand: 4) Windows Firewall -> Enabled . Internet Explorer 8.0.6001.18702 . A: \ [Removable] C: \ [Fast-FAT32] .. (Total: 112 Go - Free: 90 Go) D: \ [CD_Rom] . Scan: 19:57.51 Path: C: \ Documents and Settings \ Windows User \ Local Settings \ Temporary Internet Files \ Content.IE5 \ EI7LBMQF \ Rooter [1]. Exe Bruger: Windows-bruger (administrator -> JA) . ---------------------- \ \ Processer . Låst [System Process] (0) ______ System (4) ______ \ SystemRoot \ System32 \ smss.exe (292) ______ \? \ C: \ WINDOWS \ system32 \ csrss.exe (348) ______ \? \ C: \ WINDOWS \ SYSTEM32 \ Winlogon.exe (372) ______ C: \ WINDOWS \ system32 \ Services.exe (416) ______ C: \ WINDOWS \ system32 \ Lsass.exe (428) ______ C: \ WINDOWS \ system32 \ Svchost.exe (576) ______ C: \ WINDOWS \ system32 \ Svchost.exe (620) ______ C: \ WINDOWS \ System32 \ Svchost.exe (664) ______ C: \ WINDOWS \ system32 \ Svchost.exe (708) ______ C: \ WINDOWS \ system32 \ Svchost.exe (804) ______ C: \ WINDOWS \ system32 \ Spoolsv.exe (900) ______ C: \ WINDOWS \ system32 \ Svchost.exe (980) ______ C: \ Programmer \ Fælles filer \ AOL \ ACS \ AOLAcsd.exe (1012) ______ C: \ Programmer \ Java \ jre6 \ bin \ jqs.exe (1056) ______ C: \ WINDOWS \ System32 \ snmp.exe (1148) ______ C: \ WINDOWS \ system32 \ Svchost.exe (1180) ______ C: \ WINDOWS \ System32 \ alg.exe (1900) ______ C: \ WINDOWS \ Explorer.EXE (1124) ______ C: \ Programmer \ Lexmark 5200 serien \ lxbtbmgr.exe (528) ______ C: \ Programmer \ Java \ jre6 \ bin \ jusched.exe (1736) ______ C: \ Programmer \ Lexmark 5200 serien \ lxbtbmon.exe (1468) ______ C: \ Programmer \ Fælles filer \ AOL \ 1246084174 \ ee \ AOLSoftware.exe (1316) ______ C: \ Programmer \ Fælles filer \ AOL \ ACS \ AOLDial.exe (1572) ______ C: \ WINDOWS \ system32 \ Ctfmon.exe (1648) ______ C: \ Programmer \ Jet Skærmaftryk \ jetScreenshot.exe (1216) ______ C: \ WINDOWS \ system32 \ Wbem \ wmiprvse.exe (2148) ______ C: \ WINDOWS \ system32 \ wuauclt.exe (2428) ______ C: \ Programmer \ America Online 9.0 \ waol.exe (596) ______ C: \ Programmer \ America Online 9.0 \ shellmon.exe (756) ______ C: \ Documents and Settings \ Windows User \ Local Settings \ Temporary Internet Files \ Content.IE5 \ EI7LBMQF \ Rooter [1]. Exe (3388) . ---------------------- \ \ Enhed \ Harddisk0 \ . \ Enhed \ Harddisk0 [Sektor: 63 x 512 Bytes] . \ Enhed \ Harddisk0 \ Partition1 - [MBR] - (Start_Offset: 32256 | Længde: 120681275904) . ---------------------- \ \ Planlagte opgaver . C: \ WINDOWS \ Tasks \ SA.DAT C: \ WINDOWS \ Tasks \ Desktop.ini C: \ WINDOWS \ Tasks \ Driver Robot.job . ---------------------- \ \ Registry . . ---------------------- \ \ Files & Mapper . C: \ DOCUME ~ 1 \ WINDOW ~ 1 \ PROGRAMMER ~ 1 \ PrivacyControl ==> Slyngler <== . ---------------------- \ \ Scan afsluttet ved 19:57.56 . C: \ Rooter $ \ Rooter_1.txt - (03/07/2009 | 19:57.56) |
|
#6
3. juli 2009, 19:01
| |||
| |||
| Microsoft Pop Up Fortæl mig jeg har en virus Slet disse filer / mapper, som følger: 1. Gå til Start > Løbe > Type Notepad.exe og klik OK at åbne Notesblok. Det skal være Notesblok ikke WordPad. 2. Kopier teksten i nedenstående kode boksen ved at markere al teksten og trykke på Ctrl + C Code: Killall:: DDS:: BHO: AskBar BHO: (201f27d4-3704-41d6-89c1-aa35e39143ed) - c: \ program files \ askbardis \ bar \ bin \ askBar.dll TB: Ask Toolbar: (3041d03e-fd4b-44e0 - b742-2d9b88305f98) - c: \ program files \ askbardis \ bar \ bin \ askBar.dll IE: (FB5F1910-F110-11D2-BB9E-00C04F795683) - c: \ Programmer \ Messenger \ msmsgs.exe Folder:: c: \ DOCUME ~ 1 \ vindue ~ 1 \ applic ~ 1 \ licenser C: \ DOCUME ~ 1 \ vindue ~ 1 \ applic ~ 1 \ PCMM2009 c: \ Programmer \ PC MightyMax 2009 c: \ program files \ askbardis c: \ program files \ messenger 4. Klik derefter på Fil > Gemme 5. Navngiv filen CFScript.txt - Gem filen på dit skrivebord 6. Derefter trække CFScript (hold venstre museknap nede, samtidig med at trække filen) og slippe det (release venstre museknap) i ComboFix.exe som du kan se i skærmbilledet nedenunder. Vigtigt: Udfør denne instruktion omhyggeligt!  ComboFix vil begynde at udføre, skal du blot følge instruktionerne. Efter genstart (når den beder om at genstarte), den vil udarbejde en log for dig. Post, at log (Combofix.txt) i dit næste svar. Bemærk: Må ikke mouseclick ComboFix vindue mens den kører. Det kan forårsage dit system til at fryse
__________________ |
|
#7
5. juli 2009, 14:04
| |||
| |||
| Microsoft Pop Up Fortæl mig jeg har en virus Bare brug for at genindlæse ComboFix. Det lader til, at filen Wes delrtrd Alt, hvad jeg har, er tekstfiler af combofix. |
|
#8
5. juli 2009, 14:28
| |||
| |||
| Microsoft Pop Up Fortæl mig jeg har en virus
__________________ |
|
#9
5. juli 2009, 21:33
| |||
| |||
| Microsoft Pop Up Fortæl mig jeg har en virus Sorry det tog så lang tid. Got bid af spider og brugte det meste af tiden søger at se, om jeg kunne finde ud af, hvad bit mig. Her er scanningen. ComboFix 09-07-05.01 - Windows User 07/06/2009 0:04.4 - FAT32x86 Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.1023.742 [GMT -4:00] Kører fra: c: \ Documents and Settings \ Windows User \ Desktop \ ComboFix.exe Command switches anvendes:: c: \ Documents and Settings \ Windows User \ Desktop \ CFScript.txt . ((((((((((((((((((((((((((((((((((((((( Andre Bortfald ))))))))) )))))))))))))))))))))))))))))))))))))))) . C: \ DOCUME ~ 1 \ vindue ~ 1 \ applic ~ 1 \ licenser C: \ DOCUME ~ 1 \ vindue ~ 1 \ applic ~ 1 \ licenser \ PCMightyMax c27fe264-0186-4910-8a97-50c383296a11 C: \ DOCUME ~ 1 \ vindue ~ 1 \ applic ~ 1 \ PCMM2009 C: \ DOCUME ~ 1 \ vindue ~ 1 \ applic ~ 1 \ PCMM2009 \ diagnostiske \ sidste-scan C: \ DOCUME ~ 1 \ vindue ~ 1 \ applic ~ 1 \ PCMM2009 \ pcmm2009-konfiguration c: \ program files \ askbardis c: \ program files \ askbardis \ bar \ bin \ askBar.dll c: \ program files \ askbardis \ bar \ bin \ askPopStp.dll c: \ program files \ askbardis \ bar \ bin \ psvince.dll c: \ program files \ askbardis \ bar \ Cache \ files.ini c: \ program files \ askbardis \ bar \ History \ søgning c: \ program files \ askbardis \ bar \ Settings \ config.dat c: \ program files \ askbardis \ bar \ Settings \ config.dat.bak c: \ program files \ askbardis \ unins000.dat c: \ program files \ askbardis \ unins000.exe c: \ Programmer \ Messenger c: \ Programmer \ Messenger \ custsat.dll c: \ Programmer \ Messenger \ logowin.gif c: \ Programmer \ Messenger \ lvback.gif c: \ Programmer \ Messenger \ msgsc.dll c: \ Programmer \ Messenger \ msgslang.dll c: \ Programmer \ Messenger \ msmsgs.exe c: \ Programmer \ Messenger \ newalert.wav c: \ Programmer \ Messenger \ newemail.wav c: \ Programmer \ Messenger \ online.wav c: \ Programmer \ Messenger \ type.wav c: \ Programmer \ Messenger \ xpmsgr.chm c: \ Programmer \ PC MightyMax 2009 c: \ Programmer \ PC MightyMax 2009 \ pcmm2009.error.log . ((((((((((((((((((((((((( Files Created fra 2009-06-06 til 2009-07-06 ))))))))))) )))))))))))))))))))) . 2009-07-06 02:18. 2008-12-03 16:09 59184 ------ w-c: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ sæbeskum \ CACHE \ 4381.3.4 \ toolbarsud.exe 2009-07-06 02:18. 2006-04-06 15:33 81000 ------ w-c: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ sæbeskum \ CACHE \ 4381.3.4 \ ProgUpd.dll 2009-07-06 02:18. 2006-04-06 15:33 33896 ------ w-c: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ sæbeskum \ CACHE \ 4381.3.4 \ postproc.exe 2009-07-06 02:18. 2006-04-06 15:33 156,264 ------ w-c: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ sæbeskum \ CACHE \ 4381.3.4 \ setup.exe 2009-07-06 02:18. 2008-12-02 18:34 2316392 ------ w-c: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ sæbeskum \ CACHE \ 4381.3.4 \ ocpinst.exe 2009-07-06 02:18. 2008-11-12 21:12 1370528 ------ w-c: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ sæbeskum \ CACHE \ 4381.3.4 \ msvc9rt.exe 2009-07-06 02:18. 2008-11-06 14:42 2100984 ------ w-c: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ sæbeskum \ CACHE \ 4381.3.4 \ aol_toolbar_dual.exe 2009-07-06 02:18. 2008-07-23 18:35 62248 ------ w-c: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ sæbeskum \ CACHE \ 4381.3.4 \ ocpgc.exe 2009-07-06 02:18. 2008-07-23 18:35 15144 ------ w-c: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ sæbeskum \ CACHE \ 4381.3.4 \ ocpchk.dll 2009-07-06 02:18. 2008-07-23 18:35 74536 ------ w-c: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ sæbeskum \ CACHE \ 4381.3.4 \ instSup.dll 2009-07-06 02:18. 2006-07-31 18:41 474,184 ------ w-c: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ sæbeskum \ CACHE \ 4381.3.4 \ gui.dll 2009-07-06 02:18. 2006-04-06 15:33 25088 ------ w-c: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ sæbeskum \ CACHE \ 4381.3.4 \ EEStart.exe 2009-07-03 23:57. 2009-07-03 23:57 -------- d ----- w-C: \ Rooter $ 2009-07-01 13:43. 2009-07-01 13:43 -------- d ----- w-c: \ Documents and Settings \ Windows User \ Application Data \ ArcticLine 2009-07-01 13:43. 2009-07-01 13:43 -------- d ----- w-c: \ program files \ Jet Skærmaftryk 2009-06-30 03:17. 2006-10-12 16:29 83504 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL \ UserProfiles \ All Users \ sæbeskum \ Temp \ ProgUpd.dll 2009-06-30 03:11. 2009-06-30 03:11 -------- d ----- w-c: \ Documents and Settings \ All Users \ Application Data \ AOL OCP 2009-06-30 03:11. 2009-06-30 03:11 -------- d ----- w-c: \ Documents and Settings \ Windows User \ Local Settings \ Application Data \ AOL OCP 2009-06-30 03:05. 2009-06-30 03:07 370496 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ CC UInst.exe 2009-06-30 03:05. 2009-06-30 03:05 94256 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ i stph.dll 2009-06-30 02:57. 2009-06-30 03:05 2439824 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ oc pinsti.exe 2009-06-30 02:56. 2009-06-30 02:57 260040 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ EF uinst.exe 2009-06-30 02:55. 2009-06-30 02:56 237616 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ gu i.dll 2009-06-30 02:55. 2009-06-30 02:55 127224 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ af ixlang.exe 2009-06-30 02:55. 2009-06-30 02:55 83504 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ Pr ogUpd.dll 2009-06-30 02:54. 2009-06-30 02:55 223152 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ blev finst.exe 2009-06-30 02:53. 2009-06-30 02:54 355592 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ af ixinst.exe 2009-06-30 02:52. 2009-06-30 02:52 11056 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ CC NdInst.dll 2009-06-30 02:52. 2009-06-30 02:52 11312 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ EF uchk.dll 2009-06-30 02:52. 2009-06-30 02:52 11568 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ tb inst.dll 2009-06-30 02:52. 2009-06-30 02:52 170544 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ se tup.exe 2009-06-30 02:51. 2009-06-30 02:52 98992 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ sm instlp.exe 2009-06-30 02:51. 2009-06-30 02:51 11568 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ oc fcheck.dll 2009-06-30 02:51. 2009-06-30 02:51 15920 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ oc pchk.dll 2009-06-30 02:49. 2009-06-30 02:51 580136 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ mu inst.exe 2009-06-30 02:48. 2009-06-30 02:49 282056 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ cc ulang.exe 2009-06-30 02:48. 2009-06-30 02:48 36912 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ po stproc.exe 2009-06-30 02:47. 2009-06-30 02:48 359184 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ tb setup.exe 2009-06-30 02:36. 2009-06-30 02:47 3147256 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ oc pinsts.exe 2009-06-30 02:36. 2009-06-30 02:36 10800 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ blev fixchk.dll 2009-06-30 02:35. 2009-06-30 02:36 174752 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ st mninst.exe 2009-06-30 02:35. 2009-06-30 02:35 142040 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ al setup.exe 2009-06-30 02:34. 2009-06-30 02:34 67120 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL Downloads \ ccu_suite \ 4.3.38.1 \ ccu_suite_4.3.38.1 \ i stSup.dll 2009-06-27 06:36. 2009-06-27 06:36 -------- d ----- w-C: \ Windows \ system32 \ CatRoot_bak 2009-06-27 06:31. 2009-06-27 06:31 167999 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL \ C_America Online 9.0 \ aolEULanPack \ cswitch.exe 2009-06-27 06:31. 2009-06-27 06:31 3298040 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ AOL \ C_America Online 9.0 \ aolEULanPack \ langpack.exe 2009-06-27 06:30. 2009-06-27 06:30 -------- d ----- w-C: \ Installer iTunes 2009-06-27 06:30. 2009-06-27 06:30 -------- d ----- w-C: \ Install ICQ 2009-06-27 06:30. 2009-06-27 06:30 -------- d ----- w-C: \ AOL Instant Messenger 2009-06-27 06:30. 2009-06-27 06:30 -------- d ----- w-C: \ MAV 2009-06-27 06:29. 2009-06-27 06:29 -------- d ----- w-c: \ Programmer \ Common Files \ aolshare 2009-06-27 06:29. 2009-06-27 06:29 -------- d ----- w-c: \ program files \ America Online 9.0 2009-06-27 05:04. 2009-06-27 05:04 -------- d-sh - w-c: \ Documents and Settings \ Administrator \ IETldCache 2009-06-27 05:03. 2007-12-04 03:49 487323 ---- aw-c: \ Documents and Settings \ Administrator \ Application Data \ IE7Pro \ prosetup.exe 2009-06-27 05:03. 2007-12-04 03:43 -------- d --- aw-c: \ Documents and Settings \ Administrator \ Application Data \ IE7Pro 2009-06-27 05:03. 2009-06-27 05:03 -------- d ----- w-c: \ Documents and Settings \ Administrator 2009-06-27 05:03. 2007-12-04 03:43 -------- d ----- w-c: \ Documents and Settings \ Administrator \ Local Settings \ Application Data \ SITEguard 2009-06-27 05:03. 2007-06-13 04:19 -------- d ----- w-c: \ Documents and Settings \ Administrator \ Local Settings \ Application Data \ Microsoft 2009-06-25 02:33. 2008-04-14 00:12 221184 ---- aw-C: \ Windows \ system32 \ wmpns.dll 2009-06-25 02:05. 2009-06-25 02:05 -------- d ----- w-C: \ Windows \ system32 \ scripting 2009-06-25 02:05. 2009-06-25 02:05 -------- d ----- w-C: \ Windows \ l2schemas 2009-06-25 02:05. 2009-06-25 02:05 -------- d ----- w-C: \ Windows \ system32 \ da 2009-06-25 02:05. 2009-06-25 02:05 -------- d ----- w-C: \ Windows \ system32 \ bits 2009-06-25 01:56. 2006-02-28 16:00 67584 ---- aw-C: \ Windows \ system32 \ drivers \ sdbus.sys 2009-06-25 01:56. 2006-02-28 16:00 36096 ---- aw-C: \ Windows \ system32 \ drivers \ intelppm.sys 2009-06-25 01:56. 2006-02-28 16:00 15488 ---- aw-C: \ Windows \ system32 \ drivers \ mssmbios.sys 2009-06-25 01:56. 2006-02-28 16:00 12416 ---- aw-C: \ Windows \ system32 \ drivers \ tunmp.sys 2009-06-25 01:56. 2006-02-28 16:00 11136 ---- aw-C: \ Windows \ system32 \ drivers \ sffdisk.sys 2009-06-25 01:56. 2006-02-28 16:00 10240 ---- aw-C: \ Windows \ system32 \ drivers \ sffp_sd.sys 2009-06-25 01:56. 2006-03-17 00:33 262784 ---- aw-C: \ Windows \ system32 \ drivers \ HTTP.SYS 2009-06-25 01:54. 2006-02-28 16:00 15360 ---- aw-C: \ Windows \ system32 \ dllcache \ nppagent.exe 2009-06-25 01:53. 2006-02-28 16:00 82944 ---- aw-C: \ Windows \ system32 \ dllcache \ ws2_32.dll 2009-06-25 01:50. 2009-06-25 01:51 -------- d ----- w-C: \ Windows \ EHome 2009-06-24 06:11. 2009-06-24 06:11 -------- d-sh - w-c: \ Documents and Settings \ LocalService \ IETldCache 2009-06-24 06:10. 2009-06-24 06:10 -------- d ----- w-c: \ program files \ SNSafe & Software 2009-06-24 06:10. 2009-06-24 06:10 -------- d ----- w-c: \ Documents and Settings \ All Users \ Application Data \ SNSafe & Software 2009-06-21 00:46. 2009-04-30 21:22 12800 ------ w-C: \ Windows \ system32 \ dllcache \ xpshims.dll 2009-06-21 00:46. 2009-04-30 21:22 246272 ------ w-C: \ Windows \ system32 \ dllcache \ ieproxy.dll 2009-06-20 23:05. 2009-06-20 23:05 152576 ---- aw-c: \ Documents and Settings \ Windows User \ Application Data \ søn \ Java \ jre1.6.0_14 \ lzma.dll 2009-06-18 00:32. 2009-06-18 00:32 -------- d-sh - w-C: \ FOUND.020 2009-06-17 14:03. 2009-06-17 14:03 -------- d - h - w-C: \ Windows \ ie8 2009-06-16 23:54. 2009-06-16 23:54 -------- d ----- w-c: \ Documents and Settings \ Windows User \ Application Data \ AVS4YOU 2009-06-16 23:54. 2009-06-16 23:54 -------- d ----- w-c: \ Documents and Settings \ All Users \ Application Data \ AVS4YOU 2009-06-16 23:53. 2009-06-16 23:53 -------- d ----- w-c: \ Programmer \ Common Files \ AVSMedia 2009-06-16 23:53. 2007-02-27 22:36 974848 ---- aw-C: \ Windows \ system32 \ mfc70.dll 2009-06-16 23:53. 2007-02-27 22:36 487424 ---- aw-C: \ Windows \ system32 \ msvcp70.dll 2009-06-16 23:53. 2007-02-27 22:36 344064 ---- aw-C: \ Windows \ system32 \ msvcr70.dll 2009-06-16 23:53. 2007-02-27 22:36 1700352 ---- aw-C: \ Windows \ system32 \ Gdiplus.dll 2009-06-16 23:53. 2009-06-16 23:53 -------- d ----- w-c: \ program files \ AVS4YOU 2009-06-12 05:15. 2009-06-12 05:15 -------- d ----- w-c: \ Programmer \ Alwil Software 2009-06-11 20:27. 2009-06-11 20:27 18942 ---- ar-c: \ Documents and Settings \ Windows User \ Application Data \ Microsoft \ Installer \ (334A33C2-B9A5-4322-AB83-EBF42BFCC470) \ _2ce7ed6.exe 2009-06-11 20:27. 2009-06-11 20:27 18942 ---- ar-c: \ Documents and Settings \ Windows User \ Application Data \ Microsoft \ Installer \ (334A33C2-B9A5-4322-AB83-EBF42BFCC470) \ _2447235c.exe 2009-06-11 20:27. 2009-06-11 20:27 -------- d ----- w-c: \ program files \ Friske RAM 2009-06-11 20:21. 2009-06-11 20:21 -------- d-sh - w-C: \ FOUND.019 2009-06-11 15:55. 2009-06-10 17:39 5465088 ---- aw-C: \ Friske RAM.msi 2009-06-09 06:29. 2009-06-09 06:29 -------- d ----- w-c: \ Documents and Settings \ Windows User \ Application Data \ Blitware 2009-06-09 06:29. 2009-06-09 06:29 -------- d ----- w-c: \ program files \ Driver Robot 2009-06-09 02:24. 2009-06-09 02:24 -------- d ----- w-c: \ Documents and Settings \ All Users \ Application Data \ PC Drivers Headquarters 2009-06-09 02:23. 2009-06-09 02:23 -------- d ----- w-c: \ Documents and Settings \ Windows User \ Local Settings \ Application Data \ Downloaded Anlæg 2009-06-08 03:00. 2009-06-08 03:00 -------- d ----- w-c: \ Documents and Settings \ Windows User \ Application Data \ GetRightToGo 2009-06-07 23:38. 2008-04-14 00:12 7680 ---- aw-C: \ Windows \ system32 \ spdwnwxp.exe 2009-06-06 14:46. 2009-06-06 14:46 -------- d ----- w-c: \ program files \ filehippo.com . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))) )))))))))))))))))))))))))))))))))))))))))))) . 2009-07-03 06:49. 2007-06-16 18:55 302080 ---- aw-c: \ Documents and Settings \ Windows User \ Local Settings \ Application Data \ GDIPFONTCACHEV1.DAT 2009-06-30 03:32. 2009-05-21 02:29 3561743 ---- aw-c: \ Documents and Settings \ All Users \ Application Data \ Malwarebytes \ Malwarebytes' Anti-Malware \ mbam-setup.exe 2009-06-27 06:16. 2007-06-13 04:18 76487 ---- aw-C: \ Windows \ PCHealth \ helpctr \ OfflineCache \ index.dat 2009-06-17 15:27. 2009-05-21 02:17 38160 ---- aw-C: \ Windows \ system32 \ drivers \ mbamswissarmy.sys 2009-06-17 15:27. 2009-05-21 02:17 19096 ---- aw-C: \ Windows \ system32 \ drivers \ mbam.sys 2009-06-11 22:43. 2007-06-21 02:45 1744 ---- aw-C: \ Windows \ system32 \ d3d9caps.dat 2009-06-05 03:59. 2009-06-05 03:59 -------- d ----- w-c: \ program files \ DrWeb 2009-05-28 23:14. 2009-05-28 23:14 -------- d ----- w-c: \ Programmer \ Java 2009-05-28 23:14. 2009-05-28 23:14 152576 ---- aw-c: \ Documents and Settings \ Windows User \ Application Data \ søn \ Java \ jre1.6.0_13 \ lzma.dll 2009-05-27 15:21. 2009-05-27 15:21 372 ---- aw-c: \ program files \ ujhonz.txt 2009-05-21 15:33. 2009-05-28 23:15 410984 ---- aw-C: \ Windows \ system32 \ deploytk.dll 2009-05-21 02:17. 2009-05-21 02:17 -------- d ----- w-c: \ Programmer \ Malwarebytes' Anti-Malware 2009-05-17 00:04. 2009-05-17 00:04 -------- d ----- w-c: \ Documents and Settings \ Windows User \ Application Data \ WinPatrol 2009-05-17 00:03. 2009-05-17 00:03 -------- d ----- w-c: \ program files \ BillP Studios 2009-05-13 05:15. 2007-06-13 03:56 915456 ---- aw-C: \ Windows \ system32 \ Wininet.dll 2009-05-07 15:44. 2009-06-25 01:53 344064 ---- aw-C: \ Windows \ system32 \ Localspl.dll 2009-04-22 04:07. 2009-04-22 04:07 253688 ---- aw-C: \ Windows \ system32 \ cssdll32.dll 2009-04-17 09:58. 2009-06-25 01:53 1846656 ---- aw-C: \ Windows \ system32 \ Win32k.sys 2009-04-15 15:26. 2007-06-13 03:55 583168 ---- aw-C: \ Windows \ system32 \ Rpcrt4.dll 2007-06-11 03:19. 2007-06-07 04:37 11079 ---- aw-c: \ program files \ Folder.htt . ((((((((((((((((((((((((((((( SnapShot_2009-07-06_03.59.12 )))))))))))))) ))))))))))))))))))))))))))) . + 2009-07-06 04:08. 2009-07-06 04:08 16384 C: \ Windows \ Temp \ Perflib_Perfdata_468.dat + 2009-07-06 04:08. 2009-07-06 04:08 16384 C: \ Windows \ Temp \ Perflib_Perfdata_430.dat . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))) )))))))))))))))))))))))))))))))))))))))) . . * Note * empty entries & legit default entries er ikke vist REGEDIT4 [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ Curr entversion \ explorer \ shelliconoverlayidentifiers \ Sl owFile Icon Overlay] @ = "(7D688A77-C613-11D0-999B-00C04FD655E1)" [HKEY_CLASSES_ROOT \ CLSID \ (7D688A77-C613-11D0-999B-00C04FD655E1)] 2008-07-03 13:03 8460800 ---- aw-c: \ Windows \ System32 \ shell32.dll [HKEY_CURRENT_USER \ SOFTWARE \ Microsoft \ Windows \ Curre ntVersion \ Run] "Ctfmon.exe" = "C: \ Windows \ system32 \ Ctfmon.exe" [2006-02-28 15360] "AOL Fast Start" = "c: \ program files \ America Online 9.0 \ AOL.EXE" [2005-07-12 50776] "Jet Skærmaftryk" = "c: \ program files \ Jet Skærmaftryk \ jetScreenshot.exe" [2009-05-10 3804160] [HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ Curr entVersion \ Run] "Lexmark 5200 serien" = "c: \ Programmer \ Lexmark 5200 serien \ lxbtbmgr.exe" [2004-06-04 57344] "LXBTCATS" = "C: \ Windows \ System32 \ spool \ DRIVERS \ W32X 86 \ 3 \ LXBTtime.dll" [2004-03-17 65536] "SunJavaUpdateSched" = "c: \ Programmer \ Java \ jre6 \ bin \ jusched.exe" [2009-05-21 148888] "HostManager" = "c: \ Programmer \ Fælles filer \ AOL \ 1246084174 \ ee \ AOLSoftware.exe" [2007-04-12 42032] "AOLDialer" = "c: \ Programmer \ Fælles filer \ AOL \ ACS \ AOLDial.exe" [2004-10-20 34904] "Pure Networks Port Magic" = "c: \ progra ~ 1 \ PURENE ~ 1 \ PORTMA ~ 1 \ PortAOL.exe" [2004-04-05 99480] "QuickTime Task" = "c: \ Programmer \ QuickTime \ qttask.exe" [2008-02-20 98304] [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows NT \ CurrentVersion \ Windows] "AppInit_DLLs" = C: \ Windows \ SYSTEM32 \ cssdll32.dl l [HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ contro l \ Session Manager] BootExecute REG_MULTI_SZ AutoCheck autochk * \ 0autocheck smrgdf c: \ Documents and Settings \ Windows User \ Application Data \ iolo \ [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Windows \ Curr entversion \ setup \ disabledrunkeys] "Cmaudio" = rundll32 cmicnfg.cpl, CMICtrlWnd "NvCplDaemon" = rundll32.exe NvQTwk, NvCplDaemon initialize "nwiz" = nwiz.exe / install "RegistrySmart" = "c: \ Programmer \ RegistrySmart \ RegistrySmart.exe"-boot "<NO Navn" = "LoadPowerProfile" = rundll32.exe powrprof.dll, LoadCurrentPwrScheme [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Security Center] "AntiVirusOverride" = dword: 00000001 [HKLM \ ~ \ Services \ sharedaccess \ Parameters \ firewallpo licy \ standardprofile \ AuthorizedApplications \ List] "c: \ \ WINDOWS \ \ system32 \ \ sessmgr.exe" = "c: \ \ Programmer \ \ IncrediMail \ \ bin \ \ ImApp.exe" = "c: \ \ Programmer \ \ IncrediMail \ \ bin \ \ IncMail.exe" = "c: \ \ Programmer \ \ IncrediMail \ \ bin \ \ ImpCnt.exe" = "c: \ \ Programmer \ \ Magentic \ \ bin \ \ MgImp.exe" = "c: \ \ Programmer \ \ Magentic \ \ bin \ \ Magentic.exe" = "c: \ \ Programmer \ \ Magentic \ \ bin \ \ MgApp.exe" = "c: \ \ Programmer \ \ Common Files \ \ AOL \ \ Loader \ \ aolload.exe" = "c: \ \ Programmer \ \ Common Files \ \ AOL \ \ ACS \ \ AOLDial.exe" = "c: \ \ Programmer \ \ Common Files \ \ AOL \ \ ACS \ \ AOLacsd.exe" = "c: \ \ Programmer \ \ America Online 9.0 \ \ waol.exe" = "c: \ \ Programmer \ \ Common Files \ \ AOL \ \ TopSpeed \ \ 2.0 \ \ aoltsmon.exe" = "c: \ \ Programmer \ \ Common Files \ \ AOL \ \ TopSpeed \ \ 2.0 \ \ aoltpspd.exe" = "c: \ \ Programmer \ \ Common Files \ \ AOL \ \ System Information \ \ sinf.exe" = "c: \ \ Programmer \ \ Common Files \ \ AolCoach \ \ en_en \ \ Player \ \ AOLNySEV.exe" = "c: \ \ Programmer \ \ Malwarebytes' Anti-Malware \ \ mbam.exe" = "c: \ \ Programmer \ \ BillP Studios \ \ WinPatrol \ \ WinPatrol.exe" = "c: \ \ WINDOWS \ \ Network Diagnostic \ \ xpnetdiag.exe" = "% windir% \ \ system32 \ \ sessmgr.exe" = "c: \ \ Programmer \ \ Common Files \ \ AOL \ \ 1246084174 \ \ EE \ \ AOLServiceHost.exe" = R1 SASDIFSV; SASDIFSV c: \ Programmer \ SUPERAntiSpyware \ sasdifsv.sys [10/10/2006 1:53 PM 5632] R1 SASKUTIL; SASKUTIL c: \ Programmer \ SUPERAntiSpyware \ SASKUTIL.SYS [2/27/2007 12:39 PM 32256] R3 Winacusb; Winacusb c: \ Windows \ System32 \ Drivers \ wina cusb.sys [3/25/2008 6:57 AM 902860] S2 ioloFileInfoList; iolo FileInfoList Service c: \ Programmer \ iolo \ Common \ lib \ ioloServiceManager.exe -> c: \ Programmer \ iolo \ Common \ lib \ ioloServiceManager.exe [?] S2 ioloSystemService; iolo System Service c: \ Programmer \ iolo \ Common \ lib \ ioloServiceManager.exe -> c: \ Programmer \ iolo \ Common \ lib \ ioloServiceManager.exe [?] S3 FarStoneFireWallDrive; FarStoneFireWallDrive c: \ win Dows \ System32 \ Drivers \ FarDrive.sys [4/2/2003 2:36 PM 140256] S3 ousb2hub; OrangeWare USB 2.0 Hub Support; c: \ Windows \ System32 \ Drivers \ ousb2hub.sys [2/27/2008 7:17 AM 53248] S3 PavSRK.sys; PavSRK.sys; \? \ C: \ Windows \ system32 \ PavS RK.sys -> C: \ Windows \ system32 \ PavSRK.sys [?] S3 PavTPK.sys; PavTPK.sys; \? \ C: \ Windows \ system32 \ PavT PK.sys -> C: \ Windows \ system32 \ PavTPK.sys [?] S3 SASENUM; SASENUM c: \ Programmer \ SUPERAntiSpyware \ SASENUM.SYS [2/16/2006 5:51 PM 4096] S3 SIVDRIVER; SIV Kernel Driver c: \ Windows \ System32 \ Drivers \ SIVX32.sys [4/9/2008 9:47 AM 48480] [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Active Setup \ Installed Components \> (60B49E34-C7CC-11D0-8953-00A0C90347FF)] "C: \ Windows \ system32 \ rundll32.exe" "C: \ Windows \ system32 \ iedkcs32.dll", BrandIEActiveSe TUP SignUp [HKEY_LOCAL_MACHINE \ Software \ Microsoft \ Active Setup \ Installed Components \ (9EF0045A-CDD9-438e-95E6-02B9AFEC8E11)] c: \ Windows \ System32 \ updcrl.exe-e-uc: \ Windows \ System \ verisignpub1.crl . Indhold af "Planlagte opgaver" mappe 2009-06-09 C: \ Windows \ Tasks \ Driver Robot.job - C: \ program files \ Driver Robot \ 1.0.6.0 \ DriverRobot.exe [2009-06-09 13:02] . - - - - Forældreløse FJERNES - - - -- BHO-(201f27d4-3704-41d6-89c1-aa35e39143ed) - (no file) . ------- Supplerende Scan ------- . uSearchMigratedDefaultURL = hxxp: / / www.google.com/search?q = (searchTerms) & sourceid = ie7 & RLS = com.micros OFT: da-DK & ie = utf8 & oe = utf8 uStart Page = hxxp: / / www.aol.com/ mWindow title = Internet Explorer leveret af epix IE: & Add animation til IncrediMail Style Box - C: \ Programmer \ IncrediMail \ bin \ ressourcer \ WebMenuImg.htm IE: & AIM Søg IE: & AOL Toolbar søgning - c: \ Programmer \ AOL Toolbar \ toolbar.dll / SEARCH.HTML LSP: FarLsp.dll Trusted Zone: 88sears.com \ www Trusted Zone: aol.com \ www Trusted Zone: comodo.com \ www Trusted Zone: computer-juice.com \ www Trusted Zone: giveawayoftheday.com \ www Trusted Zone: newegg.com \ www Trusted Zone: pchelpforum.com \ www Trusted Zone: searscard.com \ www Trusted Zone: statefarm.com \ www Trusted Zone: winpatrol.com \ www TCP: (68589BEF-2503-4090-B404-9FB7D2105BB4) = 205.188.146.145 DPF: DirectAnimation Java Classes DPF: Internet Explorer Classes for Java DPF: Microsoft XML Parser for Java DPF: Win32 Classes . ************************************************** ************************ catchme 0.3.1398 W2K/XP/Vista - rootkit / stealth malware detector ved Gmer, http://www.gmer.net Rootkit scan 2009-07-06 00:08 Windows 5.1.2600 Service Pack 2 FAT NTAPI scanning skjulte processer ... scanning skjulte autostart entries ... HKLM \ Software \ Microsoft \ Windows \ CurrentVersion \ Run LXBTCATS = rundll32 C: \ Windows \ System32 \ spool \ DRIVERS \ W32X86 \ 3 \ LXBTtim e.dll, _RunDLLEntry @ 16 ???????????????????????? ????? ?????????????????????????????????????????????????? ?????????????????????????????????????????????????? ?????????????????????????????????????????????????? scanning skjulte filer ... scanning afsluttet med succes skjulte filer: 0 ************************************************** ************************ . --------------------- LOCKED registreringsdatabasenøgler --------------------- [HKEY_USERS \ $ $ $ \ Software \ Microsoft \ SystemCertificat es \ AddressBook *] @ Tilladt: (Læs) (RestrictedCode) @ Tilladt: (Læs) (RestrictedCode) . --------------------- DLL'er Loaded Under Running Processes --------------------- - - - - - - -> 'Lsass.exe «(428) C: \ Windows \ system32 \ FarLsp.dll - - - - - - -> 'Explorer.exe' (2420) C: \ Windows \ system32 \ Wininet.dll c: \ Programmer \ Fælles filer \ AOL \ ACS \ WLHook.dll c: \ Programmer \ AOL Deskbar \ deskbar.dll c: \ Programmer \ Fælles filer \ AOL \ AOL Toolbar \ AOLHelper.dll C: \ Windows \ system32 \ ieframe.dll C: \ Windows \ system32 \ Webcheck.dll . ------------------------ Other Running Processes ----------------------- -- . c: \ Programmer \ Fælles filer \ AOL \ ACS \ AOLACSD.EXE c: \ Programmer \ Java \ JRE6 \ Bin \ JQS.EXE c: \ Windows \ System32 \ SNMP.EXE c: \ program files \ LEXMARK 5200 SERIES \ LXBTBMON.EXE c: \ program files \ America Online 9.0 \ WAOL.EXE c: \ program files \ America Online 9.0 \ SHELLMON.EXE . ************************************************** ************************ . Afslutning tid: 2009-07-06 0:10 - maskinen blev genstartet ComboFix-karantæne-files.txt 2009-07-06 04:10 ComboFix2.txt 2009-07-06 04:01 ComboFix3.txt 2009-06-06 14:20 ComboFix4.txt 2009-06-04 04:03 Pre-Run: 97549156352 bytes fri Post-Run: 97532772352 bytes fri 320 --- EOF --- 2009-07-05 21:28 |
|
#10
6. juli 2009, 09:43
| |||
| |||
| Microsoft Pop Up Fortæl mig jeg har en virus Scan Mistænkelige File (s) Gå til VirusTotal.com (Hvis mere end én fil behov scannet de skal ske særskilt og logfiler indsendt for hver en) 1. Kopier filstien i nedenfor Code box: Code: c: \ Documents and Settings \ Windows User \ Application Data \ Microsoft \ Installer \ (334A33C2-B9A5-4322-AB83-EBF42BFCC470) \ _2ce7ed6.exe 3. Tryk Ctrl + V på tastaturet (begge dele på samme tid) for at indsætte filstien i vinduet. 4. Næste klikke Send File Din fil vil muligvis være trådt i en kø, der normalt tager mindre end et minut til at klare. Dette vil foretage en scanning på tværs af flere forskellige virusscanningen motorer. Vigtigt: Vent, til alle de scanning motorer til at fuldføre. 5. Kopier og derefter indsætte linket til resultaterne i den næste svar
__________________ |
|
| |
| Bogmærker |
Lignende Tråde | ||||
| Tråd | Thread Starter | Forum | Svar | Last Post |
| Bevæger sig fra Microsoft Office 2007 Outlook på PC 2 Microsoft Office X Entoutage på Mac | jjuli | Office Suites & Applications | 0 | 11th May 2009 15:52 |
| Virus Spørgsmål - Kan nogen fortælle mig, hvis jeg må have en virus | billozz | Virus, Spyware & Sikkerhed | 1 | 2 april 2009 13:58 |
| $ 250.000 (DKK 172.000) er blevet tilbudt af Microsoft til Find Hvem står bag Downadup / Conficker Virus | Hybr! D | Virus, Spyware & Sikkerhed | 1 | 17 februar 2009 11:03 |
| Mine venner MAC er en virus ... Umm ... yeah ... en virus ... | cheesepuff | Virus, Spyware & Sikkerhed | 3 | 29 oktober 2008 12:58 |
| Microsoft giver afkald på Vista | philthomas | Windows-operativsystemer | 2 | 8 april 2008 16:09 |
| Thread Tools | |
| |
